Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
208131 7.5 危険 SAP - SAP Afaria における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2015-4161 2015-06-4 14:09 2015-05-21 Show GitHub Exploit DB Packet Storm
208132 5 警告 SAP - SAP コンテンツサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2015-4157 2015-06-4 14:09 2015-05-21 Show GitHub Exploit DB Packet Storm
208133 7.5 危険 SAP - SAP ASE Database Platform における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-4160 2015-06-4 14:09 2015-05-21 Show GitHub Exploit DB Packet Storm
208134 5 警告 SAP - SAP Netweaver Application Server ABAP および SAP Netweaver Application Server Java におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2015-4158 2015-06-4 14:09 2015-05-21 Show GitHub Exploit DB Packet Storm
208135 5 警告 SAP - 複数の SAP 製品の LZH 解凍の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2015-2278 2015-06-4 14:09 2015-05-12 Show GitHub Exploit DB Packet Storm
208136 7.5 危険 SAP - SAP HANA Web-based Development Workbench における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-4159 2015-06-4 14:09 2015-05-21 Show GitHub Exploit DB Packet Storm
208137 7.5 危険 SAP - 複数の SAP 製品の LZC 解凍の実装におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2015-2282 2015-06-4 14:09 2015-05-12 Show GitHub Exploit DB Packet Storm
208138 4.3 警告 Sensio Labs - Symfony の HttpKernel コンポーネントの FragmentListener における URL 署名およびセキュリティルールを回避される脆弱性 CWE-Other
その他 		CVE-2015-4050 2015-06-4 13:50 2015-05-27 Show GitHub Exploit DB Packet Storm
208139 5 警告 Django Software Foundation - Django の cached_db バックエンドの session.flush 関数におけるユーザセッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2015-3982 2015-06-4 13:33 2015-05-20 Show GitHub Exploit DB Packet Storm
208140 3.6 注意 GNU Project
Novell		 - GNU Parallel における任意のファイルに書き込まれる脆弱性 CWE-59
リンク解釈の問題 		CVE-2015-4156 2015-06-4 12:23 2015-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348631 - afd afd Buffer overflow in Automatic File Distributor (AFD) 1.2.14 and earlier allows local users to gain privileges via a long MON_WORK_DIR environment variable or -w (workdir) argument to (1) afd, (2) afdc… NVD-CWE-Other
CVE-2002-1503 2008-09-6 05:30 2003-04-2 Show GitHub Exploit DB Packet Storm
348632 - radiobird_software webserver_4_everyone Directory traversal vulnerability in WebServer 4 Everyone 1.22 allows remote attackers to read arbitrary files via "..\" (dot-dot backslash) sequences in a URL. NVD-CWE-Other
CVE-2002-1504 2008-09-6 05:30 2003-04-2 Show GitHub Exploit DB Packet Storm
348633 - woltlab burning_board SQL injection vulnerability in board.php for WoltLab Burning Board (wBB) 2.0 RC 1 and earlier allows remote attackers to modify the database and possibly gain privileges via the boardid parameter. NVD-CWE-Other
CVE-2002-1505 2008-09-6 05:30 2003-04-2 Show GitHub Exploit DB Packet Storm
348634 - jacques_gelinas linuxconf Buffer overflow in Linuxconf before 1.28r4 allows local users to execute arbitrary code via a long LINUXCONF_LANG environment variable, which overflows an error string that is generated. NVD-CWE-Other
CVE-2002-1506 2008-09-6 05:30 2003-04-2 Show GitHub Exploit DB Packet Storm
348635 - epic_games unreal_tournament_server Unreal Tournament 2003 (ut2003) clients and servers allow remote attackers to cause a denial of service via malformed messages containing a small number of characters to UDP ports 7778 or 10777. NVD-CWE-Other
CVE-2002-1507 2008-09-6 05:30 2003-04-2 Show GitHub Exploit DB Packet Storm
348636 - xfree86_project x11r6 xdm, with the authComplain variable set to false, allows arbitrary attackers to connect to the X server if the xdm auth directory does not exist. NVD-CWE-Other
CVE-2002-1510 2008-09-6 05:30 2003-03-3 Show GitHub Exploit DB Packet Storm
348637 - tolis_group bru xbru in BRU Workstation 17.0 allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the xbru_dscheck.dd temporary file. NVD-CWE-Other
CVE-2002-1512 2008-09-6 05:30 2003-04-2 Show GitHub Exploit DB Packet Storm
348638 - compaq tcp-ip_services The UCX POP server in HP TCP/IP services for OpenVMS 4.2 through 5.3 allows local users to truncate arbitrary files via the -logfile command line option, which overrides file system permissions becau… NVD-CWE-Other
CVE-2002-1513 2008-09-6 05:30 2003-04-2 Show GitHub Exploit DB Packet Storm
348639 - borland_software interbase gds_lock_mgr in Borland InterBase allows local users to overwrite files and gain privileges via a symlink attack on a "isc_init1.X" temporary file, as demonstrated by modifying the xinetdbd file. NVD-CWE-Other
CVE-2002-1514 2008-09-6 05:30 2003-04-2 Show GitHub Exploit DB Packet Storm
348640 - coolforum coolforum Directory traversal vulnerability in avatar.php in CoolForum 0.5 beta allows remote attackers to read arbitrary files via .. (dot dot) sequences in the img parameter. NVD-CWE-Other
CVE-2002-1515 2008-09-6 05:30 2003-04-2 Show GitHub Exploit DB Packet Storm